ProFTPD 1.2.7 up to and including 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote malicious users to execute arbitrary code via a buffer overflow using certain files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
proftpd project proftpd 1.2.7 |
||
proftpd project proftpd 1.2.9_rc2 |
||
proftpd project proftpd 1.2.8_rc2 |
||
proftpd project proftpd 1.2.9_rc1 |
||
proftpd project proftpd 1.2.7_rc1 |
||
proftpd project proftpd 1.2.7_rc2 |
||
proftpd project proftpd 1.2.7_rc3 |
||
proftpd project proftpd 1.2.8 |
||
proftpd project proftpd 1.2.8_rc1 |